Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
File: UlG0CzMZisWh7fUP_whigWAzXf0.mft (raw, json)
Hash identifier: 54B34LZoMheo/c4MiJNsMlP28L30U0YPdvtDf+BBMx0=
Subject key identifier: FA:73:73:43:79:0C:02:BA:C3:7A:0E:BD:B7:22:BE:7A:EF:5F:70:80
Authority key identifier: 52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
Certificate issuer: /CN=5251b40b33198ac5a1edf50fff08628160335dfd
Certificate serial: 019D2A7296B55ECF62EC3D13FA6ACD4E1D40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
Manifest number: 1787
Signing time: Thu 26 Mar 2026 14:00:45 +0000
Manifest this update: Thu 26 Mar 2026 14:00:45 +0000
Manifest next update: Fri 27 Mar 2026 14:00:45 +0000
Files and hashes: 1: 1nMpDLYuPfBQOmpt5pYO3-mYgaM.roa (hash: qFQcqHmma1oo39YlL2XWPJ/NbS5gxpG0P6PjvZW9cyM=)
2: UlG0CzMZisWh7fUP_whigWAzXf0.crl (hash: I4LWTEX8LIk5/NbhdRtIFICOs8NRUqxGoA5BsWK5Zos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:96:b5:5e:cf:62:ec:3d:13:fa:6a:cd:4e:1d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5251b40b33198ac5a1edf50fff08628160335dfd
Validity
Not Before: Mar 26 14:00:45 2026 GMT
Not After : Mar 27 14:00:45 2026 GMT
Subject: CN=fa737343790c02bac37a0ebdb722be7aef5f7080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:4c:47:70:04:4d:5e:78:f1:88:b4:64:8a:
25:4c:0a:f8:3b:b1:b3:40:77:b6:25:f1:38:4d:8d:
8f:ed:65:7b:57:6d:2e:4a:4d:cb:2c:45:37:95:f9:
d6:d6:95:3b:4f:79:33:37:00:4c:08:0f:3e:f9:5f:
00:20:70:ed:3c:87:30:19:c6:4d:c0:6d:48:90:46:
82:5d:c3:b0:0f:09:f6:fb:c6:c2:52:f2:f1:dd:44:
24:98:1e:59:e8:7c:5f:63:ab:1c:9a:90:18:22:b6:
1e:b3:bc:ee:67:75:07:10:e8:0d:c6:b3:e4:19:36:
7f:c7:ad:08:52:21:8e:d2:94:2c:1e:af:be:a0:a7:
55:65:41:67:bb:4a:b2:c4:c9:06:9a:22:4d:fe:de:
17:7b:be:e8:cd:c7:a9:6e:b8:04:0d:f2:ac:90:53:
16:69:70:a9:0d:d9:fa:06:71:3a:3e:7c:52:81:9c:
f7:ab:f4:14:0e:41:4c:54:7d:56:e2:db:28:47:34:
f1:ed:3e:d4:d2:c4:cd:69:38:34:38:8e:e3:af:5d:
3b:74:c0:27:55:1e:86:53:e6:b2:ea:55:40:25:ba:
39:05:19:83:5c:43:45:a2:18:03:e9:2f:49:65:f0:
cc:69:78:49:8d:4a:9d:ae:19:4a:8b:f8:64:75:e2:
98:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:73:73:43:79:0C:02:BA:C3:7A:0E:BD:B7:22:BE:7A:EF:5F:70:80
X509v3 Authority Key Identifier:
keyid:52:51:B4:0B:33:19:8A:C5:A1:ED:F5:0F:FF:08:62:81:60:33:5D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlG0CzMZisWh7fUP_whigWAzXf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/eca809-d942-4d89-b438-a1c29992bfbe/1/UlG0CzMZisWh7fUP_whigWAzXf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:6b:10:63:5d:cf:4e:ec:26:1a:d9:3f:55:ac:6e:76:ec:59:
68:b5:17:4c:84:99:64:fd:87:ab:4e:ff:39:41:39:a0:a7:d8:
7f:32:9a:07:b6:b9:4d:9d:6d:70:37:3d:29:bd:a1:dd:43:46:
6b:f7:0d:c5:4b:0a:b4:e8:49:74:d5:70:6e:ac:43:47:de:0a:
95:81:3a:c4:0a:fe:2c:07:cf:b2:1a:57:56:b5:84:fc:ad:17:
15:13:ec:e2:81:8f:17:7f:2d:2b:c5:97:7c:55:0c:29:c3:f1:
92:a9:08:19:8a:ab:b4:9e:86:d2:a6:e9:ab:c8:2e:e9:5f:b6:
e3:de:d6:d2:55:29:12:7a:10:b4:9d:1a:6f:f1:b8:47:71:d3:
4e:93:e9:bd:04:7e:94:68:72:f4:39:24:fa:3a:a4:4c:77:ef:
0c:d8:65:b5:38:19:f2:8f:30:3f:48:b2:a5:6d:6c:e5:26:e4:
ad:19:53:d5:aa:98:0b:e5:99:c0:ff:5f:82:ba:b7:b7:eb:cc:
5d:3a:29:bd:cf:97:7c:d9:a7:b0:5f:59:19:0d:01:5e:bb:93:
37:32:ff:fb:ed:d7:81:09:32:17:7b:35:1d:94:16:8c:eb:41:
9e:28:86:48:7a:91:27:32:0a:cd:2e:99:4c:65:e5:16:22:2a:
01:82:82:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:13 2026 by rpki-client